Cross-Site Scripting Vulnerability in D-Link Routers
CVE-2004-0615
Currently unrated
What is CVE-2004-0615?
The D-Link DI-614+ and DI-704 SOHO routers, running specific firmware versions, are susceptible to a Cross-Site Scripting (XSS) vulnerability. This flaw enables remote attackers to inject arbitrary scripts or HTML code via the DHCP HOSTNAME option in a DHCP request. Successful exploitation could lead to unauthorized access to sensitive user information or unauthorized actions on behalf of users interacting with the router's web interface.